Lucene search
+L

372 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/28 12:0 a.m.5 views

The vulnerability of the software for data integration and analysis in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data, which allows attackers to disclose confidential information.

The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics relates to insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor to disclose confidential information...

6.5CVSS5.5AI score0.00275EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.7 views

The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data, allowing unauthorized access to protected information by attackers.

The vulnerability of the software for data integration and analytics in Hitachi Vantara Pentaho Data Integration & Analytics lies in the insufficient protection of registration data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to...

8.5CVSS5.5AI score0.00271EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/24 12:0 a.m.9 views

The vulnerability of the runas function in the microprogramming software of the digital analysis system MEAC300 allows a hacker to elevate their privileges to the level of an administrator.

The vulnerability of the runas function in the MEAC300 digital analysis system is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to elevate their privileges to the level of an administrator...

9.9CVSS5.5AI score0.00606EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/05 12:0 a.m.6 views

The vulnerability of the FactoryTalk AssetCentre software, a centralized asset management system, lies in the insufficient protection of registration data, which allows attackers to disclose sensitive information.

The vulnerability of the FactoryTalk AssetCentre software for centralized asset management lies in the insufficient protection of registration data. Exploiting this vulnerability could allow attackers to disclose sensitive information that is protected by security measures...

7.8CVSS7.1AI score0.00369EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/05 12:0 a.m.6 views

The vulnerability of the EventLogAttachmentExtractor, ArchiveExtractor, LogCleanUp, or ArchiveLogCleanUp packages of the FactoryTalk AssetCentre software solution allows a perpetrator to disclose protected information.

The vulnerability of the EventLogAttachmentExtractor, ArchiveExtractor, LogCleanUp, or ArchiveLogCleanUp packages of the FactoryTalk AssetCentre centralized asset management software is related to insufficient protection of registration data. Exploiting this vulnerability could allow an attacker ...

7CVSS7.2AI score0.00315EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/31 12:0 a.m.12 views

The vulnerability of the data export function of the Kyocera Net Viewer software, a monitoring and control device for multifunctional devices, allows a perpetrator to disclose protected information.

The vulnerability of the data export function of the Kyocera Net Viewer monitoring and control software relates to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose the protected information remotely...

8.6CVSS7.3AI score0.15102EPSS
Exploits5References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/17 12:0 a.m.6 views

The vulnerability of the Windows operating system’s kernel allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

5.5CVSS7.7AI score0.00912EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/01/17 12:0 a.m.11 views

The vulnerability of the Windows operating system’s kernel allows attackers to disclose sensitive information that is protected by security measures.

The vulnerability of the Windows operating system’s kernel is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

5.5CVSS7.7AI score0.00912EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1121 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient protection of registration data in the Windows kernel, which can be exploited to disclose protected information. This can allow an attacker to obtain...

5.5CVSS8.9AI score0.00912EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.7 views

The vulnerabilities of vSphere CPI (Cloud Provider Interface) and vSphere CSI (Container Storage Interface), which are software platforms for deploying containers in a production environment, allow attackers to exploit them to disclose sensitive information.

The vulnerability of vSphere CPI Cloud Provider Interface and vSphere CSI Container Storage Interface, two components of the software platform for container deployment in a production environment, is related to insufficient protection of registration data. Exploiting this vulnerability can allow ...

9.1CVSS7.1AI score0.00438EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.15 views

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity, related to insufficient protection of registration data, allows attackers to disclose protected information.

The vulnerability of the Continuous Integration and Deployment application delivery system CI/CD of TeamCity in JetBrains is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

7.5CVSS5.4AI score0.003EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/20 12:0 a.m.6 views

PT-2024-9848 · Jetbrains · Teamcity

Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2024.12 Description: The issue is related to insufficient protection of registration data in JetBrains TeamCity, a continuous integration and continuous delivery CI/CD system. This allows a remote attacker...

7.5CVSS6.8AI score0.003EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2024/12/18 12:0 a.m.6 views

The vulnerability in virtual and physical systems of Veeam Backup & Replication lies in the insufficient protection of registration data, allowing attackers to execute arbitrary codes.

The vulnerability of virtual and physical systems managed by Veeam Backup & Replication is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor, operating remotely, to execute arbitrary code...

9CVSS8AI score0.0112EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/16 12:0 a.m.6 views

The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems allows a perpetrator to disclose protected information.

The vulnerability of the remote management interface of the Veeam Backup & Replication software for cloud, virtual, and physical systems is related to insufficient protection of registration data. Exploiting these vulnerabilities could allow a malicious actor to disclose the protected information...

7.7CVSS7.2AI score0.00407EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/09 12:0 a.m.8 views

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series buildings lies in the insufficient protection of registration data, allowing attackers to escalate their privileges.

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series buildings is related to insufficient protection for registration data. Exploiting this vulnerability can allow an attacker, operating remotely, to increase...

10CVSS5.5AI score0.00416EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/12/02 12:0 a.m.6 views

The vulnerability of SAP NetWeaver Java software update, related to insufficient protection of registration data, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SAP NetWeaver Java software update manager is related to insufficient protection of registration data. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

4.7CVSS5.5AI score0.00127EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/11/25 12:0 a.m.5 views

The vulnerability of the “Allow Direct Connections” function in remote access and management software like AnyDesk allows a hacker to disclose protected information about the target system’s IP address.

The vulnerability of the “Allow Direct Connections” function in the remote access and management software AnyDesk is related to insufficient protection of registration data. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information about the target system’s IP...

7.8CVSS5.5AI score0.01178EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.7 views

The vulnerability of the LuCI web interface in the embedded operating system OpenWrt allows a hacker to elevate their privileges to the root level.

The vulnerability of the LuCI web interface in the embedded operating system OpenWrt is related to insufficient protection of registration data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the root level using the JSON-RPC API...

8CVSS5.5AI score0.00256EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.6 views

The vulnerability of the CI/CD system’s registration data protection mechanism in TeamCity allows attackers to compromise user passwords.

The vulnerability of the Continuous Integration and Deployment application delivery system CI/CD of TeamCity in JetBrains is related to insufficient protection for registration data. Exploiting this vulnerability could allow a malicious actor to obtain user passwords through the Sonar Runner REST...

4.3CVSS5.5AI score0.00308EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/05 12:0 a.m.9 views

PT-2024-7903

Name of the Vulnerable Software and Affected Versions: OpenWRT Luci LTS affected versions not specified Description: An issue in the luci-mod-rpc package allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package. The...

8CVSS6.4AI score0.00256EPSS
Exploits0References10
Rows per page
Query Builder